Security is critical in modern cloud-native and distributed systems. One crucial area to focus on is the supply chain. The good news is that there are many excellent open-source tools that you can easily incorporate into your Software Development Life Cycle (SDLC) to uplift your security significantly.

In this session, we will explore practical strategies to enhance the security of the Kubernetes supply chain. Embracing the shift-left methodology, we will dive into crucial subjects such as static code analysis, vulnerability scanning, Software Bill of Materials (SBOM), container image signing, and enforcing policies.

By the end of this session, you will have the knowledge and tools to strengthen supply chain security in your organization. The session will include a mix of theory, configuration samples, and a live demonstration to enhance your learning experience.